Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4dca34-745c-4180-b0f0-01dda374d67f/1/1bAhsehBJlk8722YgDQTqnLQAeA.mft
File: 1bAhsehBJlk8722YgDQTqnLQAeA.mft (raw, json)
Hash identifier: FSy8B4WuNYMpsU0YiogQex1xIA1bVEBzf9VPAL+Ypxk=
Subject key identifier: A2:DB:3C:08:BD:EC:2C:D5:08:9A:83:28:E8:E7:75:99:12:12:D4:6D
Authority key identifier: D5:B0:21:B1:E8:41:26:59:3C:EF:6D:98:80:34:13:AA:72:D0:01:E0
Certificate issuer: /CN=d5b021b1e84126593cef6d98803413aa72d001e0
Certificate serial: 019D37F7793DDBE49B65D339FD1ECA05D1A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bAhsehBJlk8722YgDQTqnLQAeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4dca34-745c-4180-b0f0-01dda374d67f/1/1bAhsehBJlk8722YgDQTqnLQAeA.mft
Manifest number: 01BC
Signing time: Sun 29 Mar 2026 05:00:58 +0000
Manifest this update: Sun 29 Mar 2026 05:00:58 +0000
Manifest next update: Mon 30 Mar 2026 05:00:58 +0000
Files and hashes: 1: 1bAhsehBJlk8722YgDQTqnLQAeA.crl (hash: u1zQvX/Km9Z5XsJx5aFBYZ95Wv6dQBX35XgYRgSnJ1M=)
2: J4-0xOuc7ybl1SkKKEI_GYBUqr4.roa (hash: 2q5jjo4zIqBtwYfXVL0EEJ2OzEi2CDWkpY8YOeiu7aA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/4dca34-745c-4180-b0f0-01dda374d67f/1/1bAhsehBJlk8722YgDQTqnLQAeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/4dca34-745c-4180-b0f0-01dda374d67f/1/1bAhsehBJlk8722YgDQTqnLQAeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1bAhsehBJlk8722YgDQTqnLQAeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:79:3d:db:e4:9b:65:d3:39:fd:1e:ca:05:d1:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b021b1e84126593cef6d98803413aa72d001e0
Validity
Not Before: Mar 29 05:00:58 2026 GMT
Not After : Mar 30 05:00:58 2026 GMT
Subject: CN=a2db3c08bdec2cd5089a8328e8e775991212d46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:47:17:f5:42:e6:53:a8:c5:c7:59:2f:20:8d:
eb:65:ed:36:f0:92:86:c4:73:11:c6:1a:38:e9:4b:
53:c1:46:ba:89:63:9f:ad:36:c1:c7:fe:b9:fb:fc:
b0:0e:e2:96:21:54:b5:6d:9d:7d:0e:6b:7a:67:76:
e4:e5:77:4d:2e:d4:25:08:53:41:6c:ca:54:f0:6d:
d4:d8:9a:6a:02:fb:ba:0e:b1:3c:b1:3d:6a:2e:4a:
6c:37:54:24:de:af:75:2a:35:de:1f:9e:4c:2f:9c:
b0:98:3a:05:54:3e:09:a3:15:0c:5d:76:aa:12:ef:
8e:4a:05:63:29:1d:fb:35:3c:3a:16:3c:87:f5:82:
36:fb:c1:11:31:11:4c:02:25:f4:b1:d9:ea:12:8d:
27:5c:dc:fa:97:1f:12:67:0e:b1:60:51:36:a5:27:
24:bd:49:56:78:9b:89:d8:ea:1b:52:ee:cb:e2:c7:
7f:f1:4a:be:ec:ff:65:a9:d1:be:95:f6:f9:ae:ba:
94:5e:f5:44:58:68:30:69:25:1f:11:f0:18:0e:c5:
6d:d1:20:40:bd:82:36:28:3a:58:b8:a3:7d:d4:6f:
92:dd:21:02:89:75:15:2c:2e:02:89:63:ae:4b:f9:
78:3b:2d:f9:7c:74:0d:b4:17:54:18:98:4b:d1:64:
e2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DB:3C:08:BD:EC:2C:D5:08:9A:83:28:E8:E7:75:99:12:12:D4:6D
X509v3 Authority Key Identifier:
keyid:D5:B0:21:B1:E8:41:26:59:3C:EF:6D:98:80:34:13:AA:72:D0:01:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bAhsehBJlk8722YgDQTqnLQAeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4dca34-745c-4180-b0f0-01dda374d67f/1/1bAhsehBJlk8722YgDQTqnLQAeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4dca34-745c-4180-b0f0-01dda374d67f/1/1bAhsehBJlk8722YgDQTqnLQAeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:a4:dc:56:fd:84:47:18:84:e8:e6:ab:4a:f4:3b:98:f5:23:
c0:c7:73:13:72:97:30:a5:00:ca:c1:05:ae:4b:39:97:14:a2:
a0:d9:34:71:70:68:9a:be:d8:42:15:61:38:22:41:bb:40:87:
1d:e2:c0:b8:17:8f:d4:ee:b7:25:f0:ef:a4:e7:c1:ef:ed:2c:
6d:22:9c:30:b7:94:11:08:e3:6b:4e:21:f2:59:93:91:d5:c0:
65:78:e5:70:01:c4:74:da:65:a8:2d:58:0d:37:2e:54:3d:d4:
d7:6d:77:6a:05:ab:00:0a:3d:57:18:c7:f0:1b:00:40:89:2e:
20:16:cc:df:01:2d:29:18:f9:b1:77:83:7e:47:d9:1d:e1:77:
48:70:bc:a1:b2:84:70:d2:d4:19:a6:78:79:a2:4c:9c:b5:d3:
f7:8c:da:b5:18:ed:3e:dd:2e:e2:5f:31:b9:fb:8a:09:ce:b3:
a9:6a:60:e1:42:4a:93:7c:a8:a2:5f:67:03:15:d2:73:62:39:
e9:9c:ec:db:e7:13:25:d1:0d:ed:41:d2:70:da:96:a9:60:b3:
0f:85:52:07:e4:8b:42:a1:19:45:eb:3e:42:e3:7e:e9:c8:7c:
ed:4d:5b:7c:58:5a:a7:2a:5b:01:08:f7:2e:87:21:fb:91:33:
b3:b0:18:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:47:41 2026 by rpki-client